TY - GEN
T1 - Formalization and Verification of Group Communication CoAP Using CSP
AU - Chen, Sini
AU - Li, Ran
AU - Zhu, Huibiao
N1 - Publisher Copyright:
© 2022, Springer Nature Switzerland AG.
PY - 2022
Y1 - 2022
N2 - With the rapid expansion of Internet of Things (IoT), Constrained Application Protocol (CoAP) is developed to enable those devices with small memory, constrained computing power and limited ability to communicate with other nodes in the network. Meanwhile, group communication is very useful for managing and controlling a set of homogeneous devices in many IoT scenarios. Thus, many scholars are devoted to expanding CoAP to enable group communication. Furthermore, because CoAP is widely applicated in transportation, health care, industrial and many other areas, the security and consistency of data is of great importance. In this paper, we adopt Communicating Sequential Processes (CSP) to model group communication CoAP, and we use model checker Process Analysis Toolkit (PAT) to verify six properties of our model, including deadlock freedom, divergence freedom, data reachability, data leakage, client faking and entity manager faking. The verification results show that the original architecture has the security risk of data leakage. So we enhance it by adding message authentication code in the process. In the light of the new verification results, it can be found that we succeed in eliminating the possibility of data leakage.
AB - With the rapid expansion of Internet of Things (IoT), Constrained Application Protocol (CoAP) is developed to enable those devices with small memory, constrained computing power and limited ability to communicate with other nodes in the network. Meanwhile, group communication is very useful for managing and controlling a set of homogeneous devices in many IoT scenarios. Thus, many scholars are devoted to expanding CoAP to enable group communication. Furthermore, because CoAP is widely applicated in transportation, health care, industrial and many other areas, the security and consistency of data is of great importance. In this paper, we adopt Communicating Sequential Processes (CSP) to model group communication CoAP, and we use model checker Process Analysis Toolkit (PAT) to verify six properties of our model, including deadlock freedom, divergence freedom, data reachability, data leakage, client faking and entity manager faking. The verification results show that the original architecture has the security risk of data leakage. So we enhance it by adding message authentication code in the process. In the light of the new verification results, it can be found that we succeed in eliminating the possibility of data leakage.
KW - CSP
KW - CoAP
KW - Group communication
KW - Modeling
KW - Verification
UR - https://www.scopus.com/pages/publications/85127675365
U2 - 10.1007/978-3-030-96772-7_58
DO - 10.1007/978-3-030-96772-7_58
M3 - 会议稿件
AN - SCOPUS:85127675365
SN - 9783030967710
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 616
EP - 628
BT - Parallel and Distributed Computing, Applications and Technologies - 22nd International Conference, PDCAT 2021, Proceedings
A2 - Shen, Hong
A2 - Sang, Yingpeng
A2 - Zhang, Yong
A2 - Xiao, Nong
A2 - Arabnia, Hamid R.
A2 - Fox, Geoffrey
A2 - Gupta, Ajay
A2 - Malek, Manu
PB - Springer Science and Business Media Deutschland GmbH
T2 - 22nd International Conference on Parallel and Distributed Computing, Applications and Technologies, PDCAT 2021
Y2 - 17 December 2021 through 19 December 2021
ER -